5
CVE-2002-0298
- EPSS 1.26%
- Veröffentlicht 31.05.2002 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:57:10
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
ScriptEase MiniWeb Server 0.95 allows remote attackers to cause a denial of service (crash) via certain HTTP GET requests containing (1) a %2e%2e (encoded dot-dot), (2) several /../ (dot dot) sequences, (3) a missing URI, or (4) several ../ in a URI that does not begin with a / (slash) character.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Nombas ≫ Scriptease Webserver Version0.95
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.26% | 0.657 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:P
|
http://marc.info/?l=bugtraq&m=101424439220931&w=2
http://www.securityfocus.com/bid/4145